Bulletproofing Web Applications

Adam Kolawa

Subscribe to Adam Kolawa: eMailAlertsEmail Alerts
Get Adam Kolawa via: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn

Top Stories by Adam Kolawa

Dr Adam Kolowa (pictured), Founder & CEO of Parasoft and panelist at SYS-CON Events'  "SOA Web Services Power Panel" at SOA Web Services Edge Conference & Expo - June 5-6, 2006 - in New York City, writes: Security has the inherent nature of spanning many different layers of a Web Services system. Web Services vulnerabilities can be present in the operating system, the network, the database, the Web server, the application server, the XML parser, the Web Services implementation stack, the application code, the XML firewall, the Web Service monitoring or management appliance, or just about any other component in your Web Services system. Therefore security testing, which is important for any software application, is even more crucial for Web Services. This article explores security issues specific to Web Services and illustrates the engineering and testing best practic... (more)

Reducing the 80/20 Rule and Increasing Developer Productivity

The 80/20 Rule is a well-known rule of thumb within the software development community that simply states that developers spend 80% of their time debugging applications and 20% writing new code. This ratio, which would seem to some outside the software industry the very embodiment of bad productivity, is unique to the software development community. No other industry measures work performed versus the amount of error fixing that needs to take place. Can you imagine what the production numbers would be for the Big Three automakers (GM, Ford, and DaimlerChrysler) if they spent 80% ... (more)

It's Time to Prevent Poorly-Written XML

Since its inception XML has at times been seen as the cure-all for every problem related to Web applications and integration projects. However, poorly written XML can either slow down an integration project, or worse, cause the integration project to collapse. When developing integration systems such as Web services or any other business-to-business function, developers may encounter the following problems when writing XML: Non-verifiable code - XML is supposed to be easily validated by use of Document Type Definitions (DTDs) or schemas. Frequently however, DTDs and schemas may... (more)

Choosing the Best Testing Tools to Increase Project Productivity

The primary mission of information technology is to improve business processes and increase profits. Companies are constantly rethinking and struggling with how to use IT to a competitive advantage, reduce IT operating and maintenance costs, and reduce the total cost of ownership… all while attempting to deliver increased value. Most of these problems can be traced to the same source: the struggle to make software work - without incurring unreasonable costs. Thus, it all seems to lead back to cost, which raises the question of why software development is so costly. Most p... (more)

Saturday Essay: Why Outsourcing is a "Tremendous Opportunity" for US Economy

Related Links: Outsourcing "Has Been Going On Forever" - Intel's CEO Offshore Outsourcing: Magic Bullet or Dirty Word? 1 in 4 IT Jobs Going Offshore, Says Gartner; One Major "Offshoring Failure" in 2004 Predicted IT Trends: "Intelligent Computing" is Greater Threat than Outsourcing One hot topic in this year's election is whether (and how) to stop U.S. companies from engaging in offshore outsourcing to India, China, and other countries. Dr. Adam Kolawa, the co-founder and CEO of Parasoft, is not convinced that limiting outsourcing in order to protect the U.S. economy is the answe... (more)